Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
File: TkJsh9-8xVLceQ_sPtHN56j4huk.mft (raw, json)
Hash identifier: 2AC51pb5wNdoK/5+FKgGTxvw+I/BP5yTeAavislrIME=
Subject key identifier: 20:39:B2:94:DB:5E:21:6E:64:5D:6E:3B:62:DE:CF:3F:D1:F0:F0:71
Authority key identifier: 4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
Certificate issuer: /CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Certificate serial: 0196BB92CC8A0A42AAE5C15C3BC0CC7996C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
Manifest number: 0871
Signing time: Sat 10 May 2025 19:01:22 +0000
Manifest this update: Sat 10 May 2025 19:01:22 +0000
Manifest next update: Sun 11 May 2025 19:01:22 +0000
Files and hashes: 1: TkJsh9-8xVLceQ_sPtHN56j4huk.crl (hash: Fupj0fNx+KJKi5/yppvM79SEASoVD/dLISRbVYs86xg=)
2: o1pkGMrhjFIHajUuas6hn3OkprM.roa (hash: vhDUewSi85hdhWxPSoEhr0a9lvOVAXD09OTRvqe5guU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:cc:8a:0a:42:aa:e5:c1:5c:3b:c0:cc:79:96:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Validity
Not Before: May 10 19:01:22 2025 GMT
Not After : May 11 19:01:22 2025 GMT
Subject: CN=2039b294db5e216e645d6e3b62decf3fd1f0f071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:03:a9:4c:7b:21:dc:28:d6:6d:30:50:a5:e1:
f4:ec:16:52:c2:13:9a:9e:35:d9:92:a6:de:95:aa:
00:4f:24:72:10:56:cb:c0:9c:9f:14:c3:70:7d:2a:
7c:44:04:6f:00:9c:c4:d5:d5:8f:6a:94:10:0b:73:
3d:c6:aa:e5:08:be:27:64:84:40:ad:40:86:ce:7e:
46:f3:1e:ca:d8:65:d6:f2:f9:b2:26:57:b7:18:ac:
10:64:32:4e:1c:f6:23:5b:0f:81:a2:73:79:81:f6:
78:40:60:71:72:18:d0:64:a6:53:43:e9:7a:00:ab:
61:c7:72:8d:b6:b4:e5:bf:75:18:59:c3:a7:b2:35:
d0:f5:9f:bf:e7:99:cb:3b:ba:ad:c5:6d:d0:d0:4f:
44:3f:59:2b:60:f8:17:44:ec:03:e5:14:28:3c:96:
58:4a:96:fa:1a:35:1d:e1:cd:31:e1:47:e5:a7:24:
78:cc:7e:97:81:76:10:d4:c9:90:13:70:b9:01:81:
34:cf:95:32:4d:4b:0c:7f:7b:80:af:2d:26:d5:1b:
1f:af:81:30:eb:55:0d:7a:29:25:59:e6:e8:82:6a:
8d:03:32:f2:77:1e:96:f3:76:46:c2:34:6d:29:f0:
a9:71:04:2e:a7:96:db:94:83:01:f9:eb:da:d9:29:
59:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:39:B2:94:DB:5E:21:6E:64:5D:6E:3B:62:DE:CF:3F:D1:F0:F0:71
X509v3 Authority Key Identifier:
keyid:4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e0:ec:6a:a4:aa:49:39:0d:9c:60:d8:5f:bc:79:6f:7c:a0:
1f:1d:d7:c6:cb:21:3f:a7:16:ee:e3:86:d3:b2:2e:1e:70:86:
8e:27:52:73:c6:30:63:e4:0d:b1:7e:a5:fc:d5:a6:a4:11:f9:
75:ef:32:13:c8:16:c7:f2:07:f2:eb:17:59:90:c8:40:c5:07:
a1:71:92:74:7e:19:09:af:2c:2b:92:c0:de:46:a0:00:53:84:
4b:2c:70:3c:53:d0:14:6b:c3:00:14:16:28:69:7c:66:32:18:
aa:93:4c:c2:bd:7e:23:7f:00:ff:43:e8:7e:82:4a:05:f3:ce:
bd:bb:c5:37:fd:7f:65:c0:fb:a8:11:17:e9:0f:80:72:84:bc:
ba:08:58:03:b7:42:65:91:02:f7:17:12:20:a9:b6:ea:f1:0d:
85:a2:9e:00:72:0f:74:69:74:35:b2:55:08:f3:43:69:54:cb:
98:9d:b9:c2:14:7e:ff:30:48:76:e2:ce:fe:4f:45:cf:b1:70:
86:0b:e6:88:3a:e1:7c:bb:31:b5:c3:c5:40:60:21:4f:66:90:
26:f9:63:f1:6d:a1:83:11:ea:8a:d1:71:5e:f4:4d:10:07:08:
2e:c0:f3:31:e2:6c:a0:1d:a0:f3:aa:d3:81:e6:f0:3b:dd:fb:
f3:ea:c9:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:25:48 2025 by rpki-client